diff --git a/examples/data_sources/server_side.html b/examples/data_sources/server_side.html
index e74bd6c8..faa87d57 100644
--- a/examples/data_sources/server_side.html
+++ b/examples/data_sources/server_side.html
@@ -82,12 +82,6 @@
Server side (PHP) code
<?php
- /*
- * Script: DataTables server-side script for PHP and MySQL
- * Copyright: 2010 - Allan Jardine
- * License: GPL v2 or BSD (3-point)
- */
-
/* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
* Easy set variables
*/
@@ -109,6 +103,9 @@
$gaSql['db'] = "";
$gaSql['server'] = "localhost";
+ /* REMOVE THIS LINE (it just includes my SQL connection user/pass) */
+ include( $_SERVER['DOCUMENT_ROOT']."/datatables/mysql.php" );
+
/* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
* If you just want to use the basic configuration for DataTables with PHP server-side, there is
@@ -139,6 +136,7 @@
/*
* Ordering
*/
+ $sOrder = "";
if ( isset( $_GET['iSortCol_0'] ) )
{
$sOrder = "ORDER BY ";
@@ -146,8 +144,8 @@
{
if ( $_GET[ 'bSortable_'.intval($_GET['iSortCol_'.$i]) ] == "true" )
{
- $sOrder .= $aColumns[ intval( $_GET['iSortCol_'.$i] ) ]."
- ".mysql_real_escape_string( $_GET['sSortDir_'.$i] ) .", ";
+ $sOrder .= "`".$aColumns[ intval( $_GET['iSortCol_'.$i] ) ]."` ".
+ mysql_real_escape_string( $_GET['sSortDir_'.$i] ) .", ";
}
}
@@ -166,12 +164,12 @@
* on very large tables, and MySQL's regex functionality is very limited
*/
$sWhere = "";
- if ( $_GET['sSearch'] != "" )
+ if ( isset($_GET['sSearch']) && $_GET['sSearch'] != "" )
{
$sWhere = "WHERE (";
for ( $i=0 ; $i<count($aColumns) ; $i++ )
{
- $sWhere .= $aColumns[$i]." LIKE '%".mysql_real_escape_string( $_GET['sSearch'] )."%' OR ";
+ $sWhere .= "`".$aColumns[$i]."` LIKE '%".mysql_real_escape_string( $_GET['sSearch'] )."%' OR ";
}
$sWhere = substr_replace( $sWhere, "", -3 );
$sWhere .= ')';
@@ -180,7 +178,7 @@
/* Individual column filtering */
for ( $i=0 ; $i<count($aColumns) ; $i++ )
{
- if ( $_GET['bSearchable_'.$i] == "true" && $_GET['sSearch_'.$i] != '' )
+ if ( isset($_GET['bSearchable_'.$i]) && $_GET['bSearchable_'.$i] == "true" && $_GET['sSearch_'.$i] != '' )
{
if ( $sWhere == "" )
{
@@ -190,7 +188,7 @@
{
$sWhere .= " AND ";
}
- $sWhere .= $aColumns[$i]." LIKE '%".mysql_real_escape_string($_GET['sSearch_'.$i])."%' ";
+ $sWhere .= "`".$aColumns[$i]."` LIKE '%".mysql_real_escape_string($_GET['sSearch_'.$i])."%' ";
}
}
@@ -200,12 +198,12 @@
* Get data to display
*/
$sQuery = "
- SELECT SQL_CALC_FOUND_ROWS ".str_replace(" , ", " ", implode(", ", $aColumns))."
+ SELECT SQL_CALC_FOUND_ROWS `".str_replace(" , ", " ", implode("`, `", $aColumns))."`
FROM $sTable
$sWhere
$sOrder
$sLimit
- ";
+ ";
$rResult = mysql_query( $sQuery, $gaSql['link'] ) or die(mysql_error());
/* Data set length after filtering */
@@ -218,7 +216,7 @@
/* Total data set length */
$sQuery = "
- SELECT COUNT(".$sIndexColumn.")
+ SELECT COUNT(`".$sIndexColumn."`)
FROM $sTable
";
$rResultTotal = mysql_query( $sQuery, $gaSql['link'] ) or die(mysql_error());
diff --git a/examples/server_side/server_side.html b/examples/server_side/server_side.html
index da57b239..2fb98507 100644
--- a/examples/server_side/server_side.html
+++ b/examples/server_side/server_side.html
@@ -81,12 +81,6 @@
Server side (PHP) code
<?php
- /*
- * Script: DataTables server-side script for PHP and MySQL
- * Copyright: 2010 - Allan Jardine
- * License: GPL v2 or BSD (3-point)
- */
-
/* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
* Easy set variables
*/
@@ -108,6 +102,9 @@
$gaSql['db'] = "";
$gaSql['server'] = "localhost";
+ /* REMOVE THIS LINE (it just includes my SQL connection user/pass) */
+ include( $_SERVER['DOCUMENT_ROOT']."/datatables/mysql.php" );
+
/* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
* If you just want to use the basic configuration for DataTables with PHP server-side, there is
@@ -138,6 +135,7 @@
/*
* Ordering
*/
+ $sOrder = "";
if ( isset( $_GET['iSortCol_0'] ) )
{
$sOrder = "ORDER BY ";
@@ -145,8 +143,8 @@
{
if ( $_GET[ 'bSortable_'.intval($_GET['iSortCol_'.$i]) ] == "true" )
{
- $sOrder .= $aColumns[ intval( $_GET['iSortCol_'.$i] ) ]."
- ".mysql_real_escape_string( $_GET['sSortDir_'.$i] ) .", ";
+ $sOrder .= "`".$aColumns[ intval( $_GET['iSortCol_'.$i] ) ]."` ".
+ mysql_real_escape_string( $_GET['sSortDir_'.$i] ) .", ";
}
}
@@ -165,12 +163,12 @@
* on very large tables, and MySQL's regex functionality is very limited
*/
$sWhere = "";
- if ( $_GET['sSearch'] != "" )
+ if ( isset($_GET['sSearch']) && $_GET['sSearch'] != "" )
{
$sWhere = "WHERE (";
for ( $i=0 ; $i<count($aColumns) ; $i++ )
{
- $sWhere .= $aColumns[$i]." LIKE '%".mysql_real_escape_string( $_GET['sSearch'] )."%' OR ";
+ $sWhere .= "`".$aColumns[$i]."` LIKE '%".mysql_real_escape_string( $_GET['sSearch'] )."%' OR ";
}
$sWhere = substr_replace( $sWhere, "", -3 );
$sWhere .= ')';
@@ -179,7 +177,7 @@
/* Individual column filtering */
for ( $i=0 ; $i<count($aColumns) ; $i++ )
{
- if ( $_GET['bSearchable_'.$i] == "true" && $_GET['sSearch_'.$i] != '' )
+ if ( isset($_GET['bSearchable_'.$i]) && $_GET['bSearchable_'.$i] == "true" && $_GET['sSearch_'.$i] != '' )
{
if ( $sWhere == "" )
{
@@ -189,7 +187,7 @@
{
$sWhere .= " AND ";
}
- $sWhere .= $aColumns[$i]." LIKE '%".mysql_real_escape_string($_GET['sSearch_'.$i])."%' ";
+ $sWhere .= "`".$aColumns[$i]."` LIKE '%".mysql_real_escape_string($_GET['sSearch_'.$i])."%' ";
}
}
@@ -199,12 +197,12 @@
* Get data to display
*/
$sQuery = "
- SELECT SQL_CALC_FOUND_ROWS ".str_replace(" , ", " ", implode(", ", $aColumns))."
+ SELECT SQL_CALC_FOUND_ROWS `".str_replace(" , ", " ", implode("`, `", $aColumns))."`
FROM $sTable
$sWhere
$sOrder
$sLimit
- ";
+ ";
$rResult = mysql_query( $sQuery, $gaSql['link'] ) or die(mysql_error());
/* Data set length after filtering */
@@ -217,7 +215,7 @@
/* Total data set length */
$sQuery = "
- SELECT COUNT(".$sIndexColumn.")
+ SELECT COUNT(`".$sIndexColumn."`)
FROM $sTable
";
$rResultTotal = mysql_query( $sQuery, $gaSql['link'] ) or die(mysql_error());